Every CVE whose affected-product data names Openrc Project Openrc, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-42341 — CVSS 7.5 (high): checkpath in OpenRC before 0.44.7 uses the direct output of strlen() to allocate strings, which does not account for the '\0' byte at the…
CVE-2018-21269 — CVSS 5.5 (medium): checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can…